@aws-solutions-constructs/aws-lambda-secretsmanager 2.79.1 → 2.81.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (35) hide show
  1. package/.jsii +43 -43
  2. package/lib/index.js +1 -1
  3. package/package.json +6 -6
  4. package/test/integ.lamsec-deployFunction.js.snapshot/asset.a0c6248ec595d3ceec1177aa5ac5b494fdf4c66f1b88aa48086befd44f193d8c/index.js +21 -0
  5. package/test/integ.lamsec-deployFunction.js.snapshot/cdk.out +1 -1
  6. package/test/integ.lamsec-deployFunction.js.snapshot/integ.json +1 -1
  7. package/test/integ.lamsec-deployFunction.js.snapshot/lamsec-deployFunction.assets.json +6 -6
  8. package/test/integ.lamsec-deployFunction.js.snapshot/lamsec-deployFunction.template.json +25 -19
  9. package/test/integ.lamsec-deployFunction.js.snapshot/lamsecdeployFunctionIntegDefaultTestDeployAssert7322BEEA.assets.json +1 -1
  10. package/test/integ.lamsec-deployFunction.js.snapshot/manifest.json +171 -3
  11. package/test/integ.lamsec-deployFunction.js.snapshot/tree.json +1 -342
  12. package/test/integ.lamsec-deployFunctionWithExistingVpc.js.snapshot/cdk.out +1 -1
  13. package/test/integ.lamsec-deployFunctionWithExistingVpc.js.snapshot/integ.json +1 -1
  14. package/test/integ.lamsec-deployFunctionWithExistingVpc.js.snapshot/lamsec-deployFunctionWithExistingVpc.assets.json +3 -3
  15. package/test/integ.lamsec-deployFunctionWithExistingVpc.js.snapshot/lamsec-deployFunctionWithExistingVpc.template.json +35 -7
  16. package/test/integ.lamsec-deployFunctionWithExistingVpc.js.snapshot/lamsecdeployFunctionWithExistingVpcIntegDefaultTestDeployAssert647243A7.assets.json +1 -1
  17. package/test/integ.lamsec-deployFunctionWithExistingVpc.js.snapshot/manifest.json +508 -3
  18. package/test/integ.lamsec-deployFunctionWithExistingVpc.js.snapshot/tree.json +1 -1407
  19. package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/cdk.out +1 -1
  20. package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/integ.json +1 -1
  21. package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/lamsec-deployFunctionWithVpc.assets.json +3 -3
  22. package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/lamsec-deployFunctionWithVpc.template.json +33 -7
  23. package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/lamsecdeployFunctionWithVpcIntegDefaultTestDeployAssert66148FF5.assets.json +1 -1
  24. package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/manifest.json +436 -3
  25. package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/tree.json +1 -995
  26. package/test/integ.lamsec-existingFunction.js.snapshot/asset.a0c6248ec595d3ceec1177aa5ac5b494fdf4c66f1b88aa48086befd44f193d8c/index.js +21 -0
  27. package/test/integ.lamsec-existingFunction.js.snapshot/cdk.out +1 -1
  28. package/test/integ.lamsec-existingFunction.js.snapshot/integ.json +1 -1
  29. package/test/integ.lamsec-existingFunction.js.snapshot/lamsec-existingFunction.assets.json +6 -6
  30. package/test/integ.lamsec-existingFunction.js.snapshot/lamsec-existingFunction.template.json +25 -19
  31. package/test/integ.lamsec-existingFunction.js.snapshot/lamsecexistingFunctionIntegDefaultTestDeployAssert295B352B.assets.json +1 -1
  32. package/test/integ.lamsec-existingFunction.js.snapshot/manifest.json +171 -3
  33. package/test/integ.lamsec-existingFunction.js.snapshot/tree.json +1 -342
  34. package/test/integ.lamsec-deployFunction.js.snapshot/asset.0c3255e93ffe7a906c7422e9f0e9cc4c7fd86ee996ee3bb302e2f134b38463c8/index.js +0 -8
  35. package/test/integ.lamsec-existingFunction.js.snapshot/asset.0c3255e93ffe7a906c7422e9f0e9cc4c7fd86ee996ee3bb302e2f134b38463c8/index.js +0 -8
package/test/integ.lamsec-deployFunctionWithVpc.js.snapshot/tree.json CHANGED
@@ -1,995 +1 @@
1
- {
2
- "version": "tree-0.1",
3
- "tree": {
4
- "id": "App",
5
- "path": "",
6
- "children": {
7
- "lamsec-deployFunctionWithVpc": {
8
- "id": "lamsec-deployFunctionWithVpc",
9
- "path": "lamsec-deployFunctionWithVpc",
10
- "children": {
11
- "test-lambda-secretsmanager": {
12
- "id": "test-lambda-secretsmanager",
13
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager",
14
- "children": {
15
- "LambdaFunctionServiceRole": {
16
- "id": "LambdaFunctionServiceRole",
17
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole",
18
- "children": {
19
- "ImportLambdaFunctionServiceRole": {
20
- "id": "ImportLambdaFunctionServiceRole",
21
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/ImportLambdaFunctionServiceRole",
22
- "constructInfo": {
23
- "fqn": "aws-cdk-lib.Resource",
24
- "version": "2.174.0"
25
- }
26
- },
27
- "Resource": {
28
- "id": "Resource",
29
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/Resource",
30
- "attributes": {
31
- "aws:cdk:cloudformation:type": "AWS::IAM::Role",
32
- "aws:cdk:cloudformation:props": {
33
- "assumeRolePolicyDocument": {
34
- "Statement": [
35
- {
36
- "Action": "sts:AssumeRole",
37
- "Effect": "Allow",
38
- "Principal": {
39
- "Service": "lambda.amazonaws.com"
40
- }
41
- }
42
- ],
43
- "Version": "2012-10-17"
44
- },
45
- "policies": [
46
- {
47
- "policyName": "LambdaFunctionServiceRolePolicy",
48
- "policyDocument": {
49
- "Statement": [
50
- {
51
- "Action": [
52
- "logs:CreateLogGroup",
53
- "logs:CreateLogStream",
54
- "logs:PutLogEvents"
55
- ],
56
- "Effect": "Allow",
57
- "Resource": {
58
- "Fn::Join": [
59
- "",
60
- [
61
- "arn:",
62
- {
63
- "Ref": "AWS::Partition"
64
- },
65
- ":logs:",
66
- {
67
- "Ref": "AWS::Region"
68
- },
69
- ":",
70
- {
71
- "Ref": "AWS::AccountId"
72
- },
73
- ":log-group:/aws/lambda/*"
74
- ]
75
- ]
76
- }
77
- }
78
- ],
79
- "Version": "2012-10-17"
80
- }
81
- }
82
- ]
83
- }
84
- },
85
- "constructInfo": {
86
- "fqn": "aws-cdk-lib.aws_iam.CfnRole",
87
- "version": "2.174.0"
88
- }
89
- },
90
- "DefaultPolicy": {
91
- "id": "DefaultPolicy",
92
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/DefaultPolicy",
93
- "children": {
94
- "Resource": {
95
- "id": "Resource",
96
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/DefaultPolicy/Resource",
97
- "attributes": {
98
- "aws:cdk:cloudformation:type": "AWS::IAM::Policy",
99
- "aws:cdk:cloudformation:props": {
100
- "policyDocument": {
101
- "Statement": [
102
- {
103
- "Action": [
104
- "ec2:AssignPrivateIpAddresses",
105
- "ec2:CreateNetworkInterface",
106
- "ec2:DeleteNetworkInterface",
107
- "ec2:DescribeNetworkInterfaces",
108
- "ec2:UnassignPrivateIpAddresses",
109
- "xray:PutTelemetryRecords",
110
- "xray:PutTraceSegments"
111
- ],
112
- "Effect": "Allow",
113
- "Resource": "*"
114
- },
115
- {
116
- "Action": [
117
- "secretsmanager:DescribeSecret",
118
- "secretsmanager:GetSecretValue"
119
- ],
120
- "Effect": "Allow",
121
- "Resource": {
122
- "Ref": "testlambdasecretsmanagersecret4C99E6BF"
123
- }
124
- }
125
- ],
126
- "Version": "2012-10-17"
127
- },
128
- "policyName": "testlambdasecretsmanagerLambdaFunctionServiceRoleDefaultPolicyF24BF460",
129
- "roles": [
130
- {
131
- "Ref": "testlambdasecretsmanagerLambdaFunctionServiceRole92CE007F"
132
- }
133
- ]
134
- }
135
- },
136
- "constructInfo": {
137
- "fqn": "aws-cdk-lib.aws_iam.CfnPolicy",
138
- "version": "2.174.0"
139
- }
140
- }
141
- },
142
- "constructInfo": {
143
- "fqn": "aws-cdk-lib.aws_iam.Policy",
144
- "version": "2.174.0"
145
- }
146
- }
147
- },
148
- "constructInfo": {
149
- "fqn": "aws-cdk-lib.aws_iam.Role",
150
- "version": "2.174.0"
151
- }
152
- },
153
- "ReplaceDefaultSecurityGroup-security-group": {
154
- "id": "ReplaceDefaultSecurityGroup-security-group",
155
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/ReplaceDefaultSecurityGroup-security-group",
156
- "children": {
157
- "Resource": {
158
- "id": "Resource",
159
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/ReplaceDefaultSecurityGroup-security-group/Resource",
160
- "attributes": {
161
- "aws:cdk:cloudformation:type": "AWS::EC2::SecurityGroup",
162
- "aws:cdk:cloudformation:props": {
163
- "groupDescription": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/ReplaceDefaultSecurityGroup-security-group",
164
- "securityGroupEgress": [
165
- {
166
- "cidrIp": "0.0.0.0/0",
167
- "description": "Allow all outbound traffic by default",
168
- "ipProtocol": "-1"
169
- }
170
- ],
171
- "vpcId": {
172
- "Ref": "Vpc8378EB38"
173
- }
174
- }
175
- },
176
- "constructInfo": {
177
- "fqn": "aws-cdk-lib.aws_ec2.CfnSecurityGroup",
178
- "version": "2.174.0"
179
- }
180
- }
181
- },
182
- "constructInfo": {
183
- "fqn": "aws-cdk-lib.aws_ec2.SecurityGroup",
184
- "version": "2.174.0"
185
- }
186
- },
187
- "LambdaFunction": {
188
- "id": "LambdaFunction",
189
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction",
190
- "children": {
191
- "Code": {
192
- "id": "Code",
193
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Code",
194
- "children": {
195
- "Stage": {
196
- "id": "Stage",
197
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Code/Stage",
198
- "constructInfo": {
199
- "fqn": "aws-cdk-lib.AssetStaging",
200
- "version": "2.174.0"
201
- }
202
- },
203
- "AssetBucket": {
204
- "id": "AssetBucket",
205
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Code/AssetBucket",
206
- "constructInfo": {
207
- "fqn": "aws-cdk-lib.aws_s3.BucketBase",
208
- "version": "2.174.0"
209
- }
210
- }
211
- },
212
- "constructInfo": {
213
- "fqn": "aws-cdk-lib.aws_s3_assets.Asset",
214
- "version": "2.174.0"
215
- }
216
- },
217
- "Resource": {
218
- "id": "Resource",
219
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Resource",
220
- "attributes": {
221
- "aws:cdk:cloudformation:type": "AWS::Lambda::Function",
222
- "aws:cdk:cloudformation:props": {
223
- "code": {
224
- "s3Bucket": {
225
- "Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
226
- },
227
- "s3Key": "a0c6248ec595d3ceec1177aa5ac5b494fdf4c66f1b88aa48086befd44f193d8c.zip"
228
- },
229
- "environment": {
230
- "variables": {
231
- "AWS_NODEJS_CONNECTION_REUSE_ENABLED": "1",
232
- "SECRET_ARN": {
233
- "Ref": "testlambdasecretsmanagersecret4C99E6BF"
234
- }
235
- }
236
- },
237
- "handler": "index.handler",
238
- "role": {
239
- "Fn::GetAtt": [
240
- "testlambdasecretsmanagerLambdaFunctionServiceRole92CE007F",
241
- "Arn"
242
- ]
243
- },
244
- "runtime": "nodejs20.x",
245
- "tracingConfig": {
246
- "mode": "Active"
247
- },
248
- "vpcConfig": {
249
- "subnetIds": [
250
- {
251
- "Ref": "VpcisolatedSubnet1SubnetE62B1B9B"
252
- },
253
- {
254
- "Ref": "VpcisolatedSubnet2Subnet39217055"
255
- }
256
- ],
257
- "securityGroupIds": [
258
- {
259
- "Fn::GetAtt": [
260
- "testlambdasecretsmanagerReplaceDefaultSecurityGroupsecuritygroupF837FD37",
261
- "GroupId"
262
- ]
263
- }
264
- ]
265
- }
266
- }
267
- },
268
- "constructInfo": {
269
- "fqn": "aws-cdk-lib.aws_lambda.CfnFunction",
270
- "version": "2.174.0"
271
- }
272
- }
273
- },
274
- "constructInfo": {
275
- "fqn": "aws-cdk-lib.aws_lambda.Function",
276
- "version": "2.174.0"
277
- }
278
- },
279
- "secret": {
280
- "id": "secret",
281
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/secret",
282
- "children": {
283
- "Resource": {
284
- "id": "Resource",
285
- "path": "lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/secret/Resource",
286
- "attributes": {
287
- "aws:cdk:cloudformation:type": "AWS::SecretsManager::Secret",
288
- "aws:cdk:cloudformation:props": {
289
- "generateSecretString": {}
290
- }
291
- },
292
- "constructInfo": {
293
- "fqn": "aws-cdk-lib.aws_secretsmanager.CfnSecret",
294
- "version": "2.174.0"
295
- }
296
- }
297
- },
298
- "constructInfo": {
299
- "fqn": "aws-cdk-lib.aws_secretsmanager.Secret",
300
- "version": "2.174.0"
301
- }
302
- }
303
- },
304
- "constructInfo": {
305
- "fqn": "@aws-solutions-constructs/aws-lambda-secretsmanager.LambdaToSecretsmanager",
306
- "version": "2.76.0"
307
- }
308
- },
309
- "Vpc": {
310
- "id": "Vpc",
311
- "path": "lamsec-deployFunctionWithVpc/Vpc",
312
- "children": {
313
- "Resource": {
314
- "id": "Resource",
315
- "path": "lamsec-deployFunctionWithVpc/Vpc/Resource",
316
- "attributes": {
317
- "aws:cdk:cloudformation:type": "AWS::EC2::VPC",
318
- "aws:cdk:cloudformation:props": {
319
- "cidrBlock": "10.0.0.0/16",
320
- "enableDnsHostnames": true,
321
- "enableDnsSupport": true,
322
- "instanceTenancy": "default",
323
- "tags": [
324
- {
325
- "key": "Name",
326
- "value": "lamsec-deployFunctionWithVpc/Vpc"
327
- }
328
- ]
329
- }
330
- },
331
- "constructInfo": {
332
- "fqn": "aws-cdk-lib.aws_ec2.CfnVPC",
333
- "version": "2.174.0"
334
- }
335
- },
336
- "isolatedSubnet1": {
337
- "id": "isolatedSubnet1",
338
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1",
339
- "children": {
340
- "Subnet": {
341
- "id": "Subnet",
342
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/Subnet",
343
- "attributes": {
344
- "aws:cdk:cloudformation:type": "AWS::EC2::Subnet",
345
- "aws:cdk:cloudformation:props": {
346
- "availabilityZone": {
347
- "Fn::Select": [
348
- 0,
349
- {
350
- "Fn::GetAZs": ""
351
- }
352
- ]
353
- },
354
- "cidrBlock": "10.0.0.0/18",
355
- "mapPublicIpOnLaunch": false,
356
- "tags": [
357
- {
358
- "key": "aws-cdk:subnet-name",
359
- "value": "isolated"
360
- },
361
- {
362
- "key": "aws-cdk:subnet-type",
363
- "value": "Isolated"
364
- },
365
- {
366
- "key": "Name",
367
- "value": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1"
368
- }
369
- ],
370
- "vpcId": {
371
- "Ref": "Vpc8378EB38"
372
- }
373
- }
374
- },
375
- "constructInfo": {
376
- "fqn": "aws-cdk-lib.aws_ec2.CfnSubnet",
377
- "version": "2.174.0"
378
- }
379
- },
380
- "Acl": {
381
- "id": "Acl",
382
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/Acl",
383
- "constructInfo": {
384
- "fqn": "aws-cdk-lib.Resource",
385
- "version": "2.174.0"
386
- }
387
- },
388
- "RouteTable": {
389
- "id": "RouteTable",
390
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/RouteTable",
391
- "attributes": {
392
- "aws:cdk:cloudformation:type": "AWS::EC2::RouteTable",
393
- "aws:cdk:cloudformation:props": {
394
- "tags": [
395
- {
396
- "key": "Name",
397
- "value": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1"
398
- }
399
- ],
400
- "vpcId": {
401
- "Ref": "Vpc8378EB38"
402
- }
403
- }
404
- },
405
- "constructInfo": {
406
- "fqn": "aws-cdk-lib.aws_ec2.CfnRouteTable",
407
- "version": "2.174.0"
408
- }
409
- },
410
- "RouteTableAssociation": {
411
- "id": "RouteTableAssociation",
412
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/RouteTableAssociation",
413
- "attributes": {
414
- "aws:cdk:cloudformation:type": "AWS::EC2::SubnetRouteTableAssociation",
415
- "aws:cdk:cloudformation:props": {
416
- "routeTableId": {
417
- "Ref": "VpcisolatedSubnet1RouteTableE442650B"
418
- },
419
- "subnetId": {
420
- "Ref": "VpcisolatedSubnet1SubnetE62B1B9B"
421
- }
422
- }
423
- },
424
- "constructInfo": {
425
- "fqn": "aws-cdk-lib.aws_ec2.CfnSubnetRouteTableAssociation",
426
- "version": "2.174.0"
427
- }
428
- }
429
- },
430
- "constructInfo": {
431
- "fqn": "aws-cdk-lib.aws_ec2.PrivateSubnet",
432
- "version": "2.174.0"
433
- }
434
- },
435
- "isolatedSubnet2": {
436
- "id": "isolatedSubnet2",
437
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2",
438
- "children": {
439
- "Subnet": {
440
- "id": "Subnet",
441
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/Subnet",
442
- "attributes": {
443
- "aws:cdk:cloudformation:type": "AWS::EC2::Subnet",
444
- "aws:cdk:cloudformation:props": {
445
- "availabilityZone": {
446
- "Fn::Select": [
447
- 1,
448
- {
449
- "Fn::GetAZs": ""
450
- }
451
- ]
452
- },
453
- "cidrBlock": "10.0.64.0/18",
454
- "mapPublicIpOnLaunch": false,
455
- "tags": [
456
- {
457
- "key": "aws-cdk:subnet-name",
458
- "value": "isolated"
459
- },
460
- {
461
- "key": "aws-cdk:subnet-type",
462
- "value": "Isolated"
463
- },
464
- {
465
- "key": "Name",
466
- "value": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2"
467
- }
468
- ],
469
- "vpcId": {
470
- "Ref": "Vpc8378EB38"
471
- }
472
- }
473
- },
474
- "constructInfo": {
475
- "fqn": "aws-cdk-lib.aws_ec2.CfnSubnet",
476
- "version": "2.174.0"
477
- }
478
- },
479
- "Acl": {
480
- "id": "Acl",
481
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/Acl",
482
- "constructInfo": {
483
- "fqn": "aws-cdk-lib.Resource",
484
- "version": "2.174.0"
485
- }
486
- },
487
- "RouteTable": {
488
- "id": "RouteTable",
489
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/RouteTable",
490
- "attributes": {
491
- "aws:cdk:cloudformation:type": "AWS::EC2::RouteTable",
492
- "aws:cdk:cloudformation:props": {
493
- "tags": [
494
- {
495
- "key": "Name",
496
- "value": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2"
497
- }
498
- ],
499
- "vpcId": {
500
- "Ref": "Vpc8378EB38"
501
- }
502
- }
503
- },
504
- "constructInfo": {
505
- "fqn": "aws-cdk-lib.aws_ec2.CfnRouteTable",
506
- "version": "2.174.0"
507
- }
508
- },
509
- "RouteTableAssociation": {
510
- "id": "RouteTableAssociation",
511
- "path": "lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/RouteTableAssociation",
512
- "attributes": {
513
- "aws:cdk:cloudformation:type": "AWS::EC2::SubnetRouteTableAssociation",
514
- "aws:cdk:cloudformation:props": {
515
- "routeTableId": {
516
- "Ref": "VpcisolatedSubnet2RouteTable334F9764"
517
- },
518
- "subnetId": {
519
- "Ref": "VpcisolatedSubnet2Subnet39217055"
520
- }
521
- }
522
- },
523
- "constructInfo": {
524
- "fqn": "aws-cdk-lib.aws_ec2.CfnSubnetRouteTableAssociation",
525
- "version": "2.174.0"
526
- }
527
- }
528
- },
529
- "constructInfo": {
530
- "fqn": "aws-cdk-lib.aws_ec2.PrivateSubnet",
531
- "version": "2.174.0"
532
- }
533
- },
534
- "RestrictDefaultSecurityGroupCustomResource": {
535
- "id": "RestrictDefaultSecurityGroupCustomResource",
536
- "path": "lamsec-deployFunctionWithVpc/Vpc/RestrictDefaultSecurityGroupCustomResource",
537
- "children": {
538
- "Default": {
539
- "id": "Default",
540
- "path": "lamsec-deployFunctionWithVpc/Vpc/RestrictDefaultSecurityGroupCustomResource/Default",
541
- "constructInfo": {
542
- "fqn": "aws-cdk-lib.CfnResource",
543
- "version": "2.174.0"
544
- }
545
- }
546
- },
547
- "constructInfo": {
548
- "fqn": "aws-cdk-lib.CustomResource",
549
- "version": "2.174.0"
550
- }
551
- },
552
- "FlowLog": {
553
- "id": "FlowLog",
554
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog",
555
- "children": {
556
- "IAMRole": {
557
- "id": "IAMRole",
558
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole",
559
- "children": {
560
- "ImportIAMRole": {
561
- "id": "ImportIAMRole",
562
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/ImportIAMRole",
563
- "constructInfo": {
564
- "fqn": "aws-cdk-lib.Resource",
565
- "version": "2.174.0"
566
- }
567
- },
568
- "Resource": {
569
- "id": "Resource",
570
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/Resource",
571
- "attributes": {
572
- "aws:cdk:cloudformation:type": "AWS::IAM::Role",
573
- "aws:cdk:cloudformation:props": {
574
- "assumeRolePolicyDocument": {
575
- "Statement": [
576
- {
577
- "Action": "sts:AssumeRole",
578
- "Effect": "Allow",
579
- "Principal": {
580
- "Service": "vpc-flow-logs.amazonaws.com"
581
- }
582
- }
583
- ],
584
- "Version": "2012-10-17"
585
- },
586
- "tags": [
587
- {
588
- "key": "Name",
589
- "value": "lamsec-deployFunctionWithVpc/Vpc/FlowLog"
590
- }
591
- ]
592
- }
593
- },
594
- "constructInfo": {
595
- "fqn": "aws-cdk-lib.aws_iam.CfnRole",
596
- "version": "2.174.0"
597
- }
598
- },
599
- "DefaultPolicy": {
600
- "id": "DefaultPolicy",
601
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/DefaultPolicy",
602
- "children": {
603
- "Resource": {
604
- "id": "Resource",
605
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/DefaultPolicy/Resource",
606
- "attributes": {
607
- "aws:cdk:cloudformation:type": "AWS::IAM::Policy",
608
- "aws:cdk:cloudformation:props": {
609
- "policyDocument": {
610
- "Statement": [
611
- {
612
- "Action": [
613
- "logs:CreateLogStream",
614
- "logs:DescribeLogStreams",
615
- "logs:PutLogEvents"
616
- ],
617
- "Effect": "Allow",
618
- "Resource": {
619
- "Fn::GetAtt": [
620
- "VpcFlowLogLogGroup7B5C56B9",
621
- "Arn"
622
- ]
623
- }
624
- },
625
- {
626
- "Action": "iam:PassRole",
627
- "Effect": "Allow",
628
- "Resource": {
629
- "Fn::GetAtt": [
630
- "VpcFlowLogIAMRole6A475D41",
631
- "Arn"
632
- ]
633
- }
634
- }
635
- ],
636
- "Version": "2012-10-17"
637
- },
638
- "policyName": "VpcFlowLogIAMRoleDefaultPolicy406FB995",
639
- "roles": [
640
- {
641
- "Ref": "VpcFlowLogIAMRole6A475D41"
642
- }
643
- ]
644
- }
645
- },
646
- "constructInfo": {
647
- "fqn": "aws-cdk-lib.aws_iam.CfnPolicy",
648
- "version": "2.174.0"
649
- }
650
- }
651
- },
652
- "constructInfo": {
653
- "fqn": "aws-cdk-lib.aws_iam.Policy",
654
- "version": "2.174.0"
655
- }
656
- }
657
- },
658
- "constructInfo": {
659
- "fqn": "aws-cdk-lib.aws_iam.Role",
660
- "version": "2.174.0"
661
- }
662
- },
663
- "LogGroup": {
664
- "id": "LogGroup",
665
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/LogGroup",
666
- "children": {
667
- "Resource": {
668
- "id": "Resource",
669
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/LogGroup/Resource",
670
- "attributes": {
671
- "aws:cdk:cloudformation:type": "AWS::Logs::LogGroup",
672
- "aws:cdk:cloudformation:props": {
673
- "retentionInDays": 731,
674
- "tags": [
675
- {
676
- "key": "Name",
677
- "value": "lamsec-deployFunctionWithVpc/Vpc/FlowLog"
678
- }
679
- ]
680
- }
681
- },
682
- "constructInfo": {
683
- "fqn": "aws-cdk-lib.aws_logs.CfnLogGroup",
684
- "version": "2.174.0"
685
- }
686
- }
687
- },
688
- "constructInfo": {
689
- "fqn": "aws-cdk-lib.aws_logs.LogGroup",
690
- "version": "2.174.0"
691
- }
692
- },
693
- "FlowLog": {
694
- "id": "FlowLog",
695
- "path": "lamsec-deployFunctionWithVpc/Vpc/FlowLog/FlowLog",
696
- "attributes": {
697
- "aws:cdk:cloudformation:type": "AWS::EC2::FlowLog",
698
- "aws:cdk:cloudformation:props": {
699
- "deliverLogsPermissionArn": {
700
- "Fn::GetAtt": [
701
- "VpcFlowLogIAMRole6A475D41",
702
- "Arn"
703
- ]
704
- },
705
- "logDestinationType": "cloud-watch-logs",
706
- "logGroupName": {
707
- "Ref": "VpcFlowLogLogGroup7B5C56B9"
708
- },
709
- "resourceId": {
710
- "Ref": "Vpc8378EB38"
711
- },
712
- "resourceType": "VPC",
713
- "tags": [
714
- {
715
- "key": "Name",
716
- "value": "lamsec-deployFunctionWithVpc/Vpc/FlowLog"
717
- }
718
- ],
719
- "trafficType": "ALL"
720
- }
721
- },
722
- "constructInfo": {
723
- "fqn": "aws-cdk-lib.aws_ec2.CfnFlowLog",
724
- "version": "2.174.0"
725
- }
726
- }
727
- },
728
- "constructInfo": {
729
- "fqn": "aws-cdk-lib.aws_ec2.FlowLog",
730
- "version": "2.174.0"
731
- }
732
- },
733
- "SECRETS_MANAGER": {
734
- "id": "SECRETS_MANAGER",
735
- "path": "lamsec-deployFunctionWithVpc/Vpc/SECRETS_MANAGER",
736
- "children": {
737
- "Resource": {
738
- "id": "Resource",
739
- "path": "lamsec-deployFunctionWithVpc/Vpc/SECRETS_MANAGER/Resource",
740
- "attributes": {
741
- "aws:cdk:cloudformation:type": "AWS::EC2::VPCEndpoint",
742
- "aws:cdk:cloudformation:props": {
743
- "tags": [
744
- {
745
- "key": "Name",
746
- "value": "lamsec-deployFunctionWithVpc/Vpc"
747
- }
748
- ],
749
- "privateDnsEnabled": true,
750
- "securityGroupIds": [
751
- {
752
- "Fn::GetAtt": [
753
- "lamsecdeployFunctionWithVpcSECRETSMANAGERsecuritygroup98862008",
754
- "GroupId"
755
- ]
756
- }
757
- ],
758
- "serviceName": {
759
- "Fn::Join": [
760
- "",
761
- [
762
- "com.amazonaws.",
763
- {
764
- "Ref": "AWS::Region"
765
- },
766
- ".secretsmanager"
767
- ]
768
- ]
769
- },
770
- "subnetIds": [
771
- {
772
- "Ref": "VpcisolatedSubnet1SubnetE62B1B9B"
773
- },
774
- {
775
- "Ref": "VpcisolatedSubnet2Subnet39217055"
776
- }
777
- ],
778
- "vpcEndpointType": "Interface",
779
- "vpcId": {
780
- "Ref": "Vpc8378EB38"
781
- }
782
- }
783
- },
784
- "constructInfo": {
785
- "fqn": "aws-cdk-lib.aws_ec2.CfnVPCEndpoint",
786
- "version": "2.174.0"
787
- }
788
- }
789
- },
790
- "constructInfo": {
791
- "fqn": "aws-cdk-lib.aws_ec2.InterfaceVpcEndpoint",
792
- "version": "2.174.0"
793
- }
794
- }
795
- },
796
- "constructInfo": {
797
- "fqn": "aws-cdk-lib.aws_ec2.Vpc",
798
- "version": "2.174.0"
799
- }
800
- },
801
- "LatestNodeRuntimeMap": {
802
- "id": "LatestNodeRuntimeMap",
803
- "path": "lamsec-deployFunctionWithVpc/LatestNodeRuntimeMap",
804
- "constructInfo": {
805
- "fqn": "aws-cdk-lib.CfnMapping",
806
- "version": "2.174.0"
807
- }
808
- },
809
- "Custom::VpcRestrictDefaultSGCustomResourceProvider": {
810
- "id": "Custom::VpcRestrictDefaultSGCustomResourceProvider",
811
- "path": "lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider",
812
- "children": {
813
- "Staging": {
814
- "id": "Staging",
815
- "path": "lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider/Staging",
816
- "constructInfo": {
817
- "fqn": "aws-cdk-lib.AssetStaging",
818
- "version": "2.174.0"
819
- }
820
- },
821
- "Role": {
822
- "id": "Role",
823
- "path": "lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider/Role",
824
- "constructInfo": {
825
- "fqn": "aws-cdk-lib.CfnResource",
826
- "version": "2.174.0"
827
- }
828
- },
829
- "Handler": {
830
- "id": "Handler",
831
- "path": "lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider/Handler",
832
- "constructInfo": {
833
- "fqn": "aws-cdk-lib.CfnResource",
834
- "version": "2.174.0"
835
- }
836
- }
837
- },
838
- "constructInfo": {
839
- "fqn": "aws-cdk-lib.CustomResourceProviderBase",
840
- "version": "2.174.0"
841
- }
842
- },
843
- "lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group": {
844
- "id": "lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group",
845
- "path": "lamsec-deployFunctionWithVpc/lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group",
846
- "children": {
847
- "Resource": {
848
- "id": "Resource",
849
- "path": "lamsec-deployFunctionWithVpc/lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group/Resource",
850
- "attributes": {
851
- "aws:cdk:cloudformation:type": "AWS::EC2::SecurityGroup",
852
- "aws:cdk:cloudformation:props": {
853
- "groupDescription": "lamsec-deployFunctionWithVpc/lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group",
854
- "securityGroupEgress": [
855
- {
856
- "cidrIp": "0.0.0.0/0",
857
- "description": "Allow all outbound traffic by default",
858
- "ipProtocol": "-1"
859
- }
860
- ],
861
- "securityGroupIngress": [
862
- {
863
- "cidrIp": {
864
- "Fn::GetAtt": [
865
- "Vpc8378EB38",
866
- "CidrBlock"
867
- ]
868
- },
869
- "ipProtocol": "tcp",
870
- "fromPort": 443,
871
- "toPort": 443,
872
- "description": {
873
- "Fn::Join": [
874
- "",
875
- [
876
- "from ",
877
- {
878
- "Fn::GetAtt": [
879
- "Vpc8378EB38",
880
- "CidrBlock"
881
- ]
882
- },
883
- ":443"
884
- ]
885
- ]
886
- }
887
- }
888
- ],
889
- "vpcId": {
890
- "Ref": "Vpc8378EB38"
891
- }
892
- }
893
- },
894
- "constructInfo": {
895
- "fqn": "aws-cdk-lib.aws_ec2.CfnSecurityGroup",
896
- "version": "2.174.0"
897
- }
898
- }
899
- },
900
- "constructInfo": {
901
- "fqn": "aws-cdk-lib.aws_ec2.SecurityGroup",
902
- "version": "2.174.0"
903
- }
904
- },
905
- "Integ": {
906
- "id": "Integ",
907
- "path": "lamsec-deployFunctionWithVpc/Integ",
908
- "children": {
909
- "DefaultTest": {
910
- "id": "DefaultTest",
911
- "path": "lamsec-deployFunctionWithVpc/Integ/DefaultTest",
912
- "children": {
913
- "Default": {
914
- "id": "Default",
915
- "path": "lamsec-deployFunctionWithVpc/Integ/DefaultTest/Default",
916
- "constructInfo": {
917
- "fqn": "constructs.Construct",
918
- "version": "10.4.2"
919
- }
920
- },
921
- "DeployAssert": {
922
- "id": "DeployAssert",
923
- "path": "lamsec-deployFunctionWithVpc/Integ/DefaultTest/DeployAssert",
924
- "children": {
925
- "BootstrapVersion": {
926
- "id": "BootstrapVersion",
927
- "path": "lamsec-deployFunctionWithVpc/Integ/DefaultTest/DeployAssert/BootstrapVersion",
928
- "constructInfo": {
929
- "fqn": "aws-cdk-lib.CfnParameter",
930
- "version": "2.174.0"
931
- }
932
- },
933
- "CheckBootstrapVersion": {
934
- "id": "CheckBootstrapVersion",
935
- "path": "lamsec-deployFunctionWithVpc/Integ/DefaultTest/DeployAssert/CheckBootstrapVersion",
936
- "constructInfo": {
937
- "fqn": "aws-cdk-lib.CfnRule",
938
- "version": "2.174.0"
939
- }
940
- }
941
- },
942
- "constructInfo": {
943
- "fqn": "aws-cdk-lib.Stack",
944
- "version": "2.174.0"
945
- }
946
- }
947
- },
948
- "constructInfo": {
949
- "fqn": "@aws-cdk/integ-tests-alpha.IntegTestCase",
950
- "version": "2.174.0-alpha.0"
951
- }
952
- }
953
- },
954
- "constructInfo": {
955
- "fqn": "@aws-cdk/integ-tests-alpha.IntegTest",
956
- "version": "2.174.0-alpha.0"
957
- }
958
- },
959
- "BootstrapVersion": {
960
- "id": "BootstrapVersion",
961
- "path": "lamsec-deployFunctionWithVpc/BootstrapVersion",
962
- "constructInfo": {
963
- "fqn": "aws-cdk-lib.CfnParameter",
964
- "version": "2.174.0"
965
- }
966
- },
967
- "CheckBootstrapVersion": {
968
- "id": "CheckBootstrapVersion",
969
- "path": "lamsec-deployFunctionWithVpc/CheckBootstrapVersion",
970
- "constructInfo": {
971
- "fqn": "aws-cdk-lib.CfnRule",
972
- "version": "2.174.0"
973
- }
974
- }
975
- },
976
- "constructInfo": {
977
- "fqn": "aws-cdk-lib.Stack",
978
- "version": "2.174.0"
979
- }
980
- },
981
- "Tree": {
982
- "id": "Tree",
983
- "path": "Tree",
984
- "constructInfo": {
985
- "fqn": "constructs.Construct",
986
- "version": "10.4.2"
987
- }
988
- }
989
- },
990
- "constructInfo": {
991
- "fqn": "aws-cdk-lib.App",
992
- "version": "2.174.0"
993
- }
994
- }
995
- }
1
+ {"version":"tree-0.1","tree":{"id":"App","path":"","children":{"lamsec-deployFunctionWithVpc":{"id":"lamsec-deployFunctionWithVpc","path":"lamsec-deployFunctionWithVpc","children":{"test-lambda-secretsmanager":{"id":"test-lambda-secretsmanager","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager","children":{"LambdaFunctionServiceRole":{"id":"LambdaFunctionServiceRole","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole","children":{"ImportLambdaFunctionServiceRole":{"id":"ImportLambdaFunctionServiceRole","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/ImportLambdaFunctionServiceRole","constructInfo":{"fqn":"aws-cdk-lib.Resource","version":"2.186.0","metadata":["*"]}},"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::IAM::Role","aws:cdk:cloudformation:props":{"assumeRolePolicyDocument":{"Statement":[{"Action":"sts:AssumeRole","Effect":"Allow","Principal":{"Service":"lambda.amazonaws.com"}}],"Version":"2012-10-17"},"policies":[{"policyName":"LambdaFunctionServiceRolePolicy","policyDocument":{"Statement":[{"Action":["logs:CreateLogGroup","logs:CreateLogStream","logs:PutLogEvents"],"Effect":"Allow","Resource":{"Fn::Join":["",["arn:",{"Ref":"AWS::Partition"},":logs:",{"Ref":"AWS::Region"},":",{"Ref":"AWS::AccountId"},":log-group:/aws/lambda/*"]]}}],"Version":"2012-10-17"}}]}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.CfnRole","version":"2.186.0"}},"DefaultPolicy":{"id":"DefaultPolicy","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/DefaultPolicy","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunctionServiceRole/DefaultPolicy/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::IAM::Policy","aws:cdk:cloudformation:props":{"policyDocument":{"Statement":[{"Action":["ec2:AssignPrivateIpAddresses","ec2:CreateNetworkInterface","ec2:DeleteNetworkInterface","ec2:DescribeNetworkInterfaces","ec2:UnassignPrivateIpAddresses"],"Effect":"Allow","Resource":"*"},{"Action":["secretsmanager:DescribeSecret","secretsmanager:GetSecretValue"],"Effect":"Allow","Resource":{"Ref":"testlambdasecretsmanagersecret4C99E6BF"}}],"Version":"2012-10-17"},"policyName":"testlambdasecretsmanagerLambdaFunctionServiceRoleDefaultPolicyF24BF460","roles":[{"Ref":"testlambdasecretsmanagerLambdaFunctionServiceRole92CE007F"}]}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.CfnPolicy","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.Policy","version":"2.186.0","metadata":["*",{"attachToRole":["*"]},{"attachToRole":["*"]},{"addStatements":[{}]},{"addStatements":[{}]}]}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.Role","version":"2.186.0","metadata":[{"assumedBy":{"principalAccount":"*","assumeRoleAction":"*"},"inlinePolicies":"*"},{"addToPolicy":[{}]},{"addToPrincipalPolicy":[{}]},{"attachInlinePolicy":["*"]},{"attachInlinePolicy":["*"]},{"attachInlinePolicy":["*"]},{"attachInlinePolicy":["*"]},{"addToPrincipalPolicy":[{}]}]}},"ReplaceDefaultSecurityGroup-security-group":{"id":"ReplaceDefaultSecurityGroup-security-group","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/ReplaceDefaultSecurityGroup-security-group","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/ReplaceDefaultSecurityGroup-security-group/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::SecurityGroup","aws:cdk:cloudformation:props":{"groupDescription":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/ReplaceDefaultSecurityGroup-security-group","securityGroupEgress":[{"cidrIp":"0.0.0.0/0","description":"Allow all outbound traffic by default","ipProtocol":"-1"}],"vpcId":{"Ref":"Vpc8378EB38"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnSecurityGroup","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.SecurityGroup","version":"2.186.0","metadata":[{"vpc":"*","allowAllOutbound":true}]}},"LambdaFunction":{"id":"LambdaFunction","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction","children":{"Code":{"id":"Code","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Code","children":{"Stage":{"id":"Stage","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Code/Stage","constructInfo":{"fqn":"aws-cdk-lib.AssetStaging","version":"2.186.0"}},"AssetBucket":{"id":"AssetBucket","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Code/AssetBucket","constructInfo":{"fqn":"aws-cdk-lib.aws_s3.BucketBase","version":"2.186.0","metadata":[]}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_s3_assets.Asset","version":"2.186.0"}},"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::Lambda::Function","aws:cdk:cloudformation:props":{"code":{"s3Bucket":{"Fn::Sub":"cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"},"s3Key":"a0c6248ec595d3ceec1177aa5ac5b494fdf4c66f1b88aa48086befd44f193d8c.zip"},"environment":{"variables":{"AWS_NODEJS_CONNECTION_REUSE_ENABLED":"1","SECRET_ARN":{"Ref":"testlambdasecretsmanagersecret4C99E6BF"}}},"handler":"index.handler","role":{"Fn::GetAtt":["testlambdasecretsmanagerLambdaFunctionServiceRole92CE007F","Arn"]},"runtime":"nodejs20.x","tracingConfig":{"mode":"Active"},"vpcConfig":{"subnetIds":[{"Ref":"VpcisolatedSubnet1SubnetE62B1B9B"},{"Ref":"VpcisolatedSubnet2Subnet39217055"}],"securityGroupIds":[{"Fn::GetAtt":["testlambdasecretsmanagerReplaceDefaultSecurityGroupsecuritygroupF837FD37","GroupId"]}]}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_lambda.CfnFunction","version":"2.186.0"}},"inlinePolicyAddedToExecutionRole-0":{"id":"inlinePolicyAddedToExecutionRole-0","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/inlinePolicyAddedToExecutionRole-0","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/LambdaFunction/inlinePolicyAddedToExecutionRole-0/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::IAM::Policy","aws:cdk:cloudformation:props":{"policyDocument":{"Statement":[{"Action":["xray:PutTelemetryRecords","xray:PutTraceSegments"],"Effect":"Allow","Resource":"*"}],"Version":"2012-10-17"},"policyName":"testlambdasecretsmanagerLambdaFunctioninlinePolicyAddedToExecutionRole0A805C55F","roles":[{"Ref":"testlambdasecretsmanagerLambdaFunctionServiceRole92CE007F"}]}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.CfnPolicy","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.Policy","version":"2.186.0","metadata":[{"statements":"*"},{"addStatements":[{}]},{"attachToRole":["*"]},{"attachToRole":["*"]}]}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_lambda.Function","version":"2.186.0","metadata":[{"role":"*","tracing":"Active","runtime":"*","handler":"*","code":"*","securityGroups":["*"],"vpc":"*"},{"addEnvironment":["*","*",{"removeInEdge":true}]},{"addEnvironment":["*","*"]}]}},"secret":{"id":"secret","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/secret","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/test-lambda-secretsmanager/secret/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::SecretsManager::Secret","aws:cdk:cloudformation:props":{"generateSecretString":{}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_secretsmanager.CfnSecret","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_secretsmanager.Secret","version":"2.186.0","metadata":[{"removalPolicy":"destroy"}]}}},"constructInfo":{"fqn":"@aws-solutions-constructs/aws-lambda-secretsmanager.LambdaToSecretsmanager","version":"2.80.0"}},"Vpc":{"id":"Vpc","path":"lamsec-deployFunctionWithVpc/Vpc","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/Vpc/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::VPC","aws:cdk:cloudformation:props":{"cidrBlock":"10.0.0.0/16","enableDnsHostnames":true,"enableDnsSupport":true,"instanceTenancy":"default","tags":[{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc"}]}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnVPC","version":"2.186.0"}},"isolatedSubnet1":{"id":"isolatedSubnet1","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1","children":{"Subnet":{"id":"Subnet","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/Subnet","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::Subnet","aws:cdk:cloudformation:props":{"availabilityZone":{"Fn::Select":[0,{"Fn::GetAZs":""}]},"cidrBlock":"10.0.0.0/18","mapPublicIpOnLaunch":false,"tags":[{"key":"aws-cdk:subnet-name","value":"isolated"},{"key":"aws-cdk:subnet-type","value":"Isolated"},{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1"}],"vpcId":{"Ref":"Vpc8378EB38"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnSubnet","version":"2.186.0"}},"Acl":{"id":"Acl","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/Acl","constructInfo":{"fqn":"aws-cdk-lib.Resource","version":"2.186.0","metadata":[]}},"RouteTable":{"id":"RouteTable","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/RouteTable","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::RouteTable","aws:cdk:cloudformation:props":{"tags":[{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1"}],"vpcId":{"Ref":"Vpc8378EB38"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnRouteTable","version":"2.186.0"}},"RouteTableAssociation":{"id":"RouteTableAssociation","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet1/RouteTableAssociation","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::SubnetRouteTableAssociation","aws:cdk:cloudformation:props":{"routeTableId":{"Ref":"VpcisolatedSubnet1RouteTableE442650B"},"subnetId":{"Ref":"VpcisolatedSubnet1SubnetE62B1B9B"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnSubnetRouteTableAssociation","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.PrivateSubnet","version":"2.186.0","metadata":[{"availabilityZone":"*","vpcId":"*","cidrBlock":"*","mapPublicIpOnLaunch":false,"ipv6CidrBlock":"*","assignIpv6AddressOnCreation":"*"},{"availabilityZone":"*","vpcId":"*","cidrBlock":"*","mapPublicIpOnLaunch":false,"ipv6CidrBlock":"*","assignIpv6AddressOnCreation":"*"}]}},"isolatedSubnet2":{"id":"isolatedSubnet2","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2","children":{"Subnet":{"id":"Subnet","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/Subnet","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::Subnet","aws:cdk:cloudformation:props":{"availabilityZone":{"Fn::Select":[1,{"Fn::GetAZs":""}]},"cidrBlock":"10.0.64.0/18","mapPublicIpOnLaunch":false,"tags":[{"key":"aws-cdk:subnet-name","value":"isolated"},{"key":"aws-cdk:subnet-type","value":"Isolated"},{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2"}],"vpcId":{"Ref":"Vpc8378EB38"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnSubnet","version":"2.186.0"}},"Acl":{"id":"Acl","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/Acl","constructInfo":{"fqn":"aws-cdk-lib.Resource","version":"2.186.0","metadata":[]}},"RouteTable":{"id":"RouteTable","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/RouteTable","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::RouteTable","aws:cdk:cloudformation:props":{"tags":[{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2"}],"vpcId":{"Ref":"Vpc8378EB38"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnRouteTable","version":"2.186.0"}},"RouteTableAssociation":{"id":"RouteTableAssociation","path":"lamsec-deployFunctionWithVpc/Vpc/isolatedSubnet2/RouteTableAssociation","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::SubnetRouteTableAssociation","aws:cdk:cloudformation:props":{"routeTableId":{"Ref":"VpcisolatedSubnet2RouteTable334F9764"},"subnetId":{"Ref":"VpcisolatedSubnet2Subnet39217055"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnSubnetRouteTableAssociation","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.PrivateSubnet","version":"2.186.0","metadata":[{"availabilityZone":"*","vpcId":"*","cidrBlock":"*","mapPublicIpOnLaunch":false,"ipv6CidrBlock":"*","assignIpv6AddressOnCreation":"*"},{"availabilityZone":"*","vpcId":"*","cidrBlock":"*","mapPublicIpOnLaunch":false,"ipv6CidrBlock":"*","assignIpv6AddressOnCreation":"*"}]}},"RestrictDefaultSecurityGroupCustomResource":{"id":"RestrictDefaultSecurityGroupCustomResource","path":"lamsec-deployFunctionWithVpc/Vpc/RestrictDefaultSecurityGroupCustomResource","children":{"Default":{"id":"Default","path":"lamsec-deployFunctionWithVpc/Vpc/RestrictDefaultSecurityGroupCustomResource/Default","constructInfo":{"fqn":"aws-cdk-lib.CfnResource","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.CustomResource","version":"2.186.0","metadata":["*"]}},"FlowLog":{"id":"FlowLog","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog","children":{"IAMRole":{"id":"IAMRole","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole","children":{"ImportIAMRole":{"id":"ImportIAMRole","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/ImportIAMRole","constructInfo":{"fqn":"aws-cdk-lib.Resource","version":"2.186.0","metadata":["*"]}},"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::IAM::Role","aws:cdk:cloudformation:props":{"assumeRolePolicyDocument":{"Statement":[{"Action":"sts:AssumeRole","Effect":"Allow","Principal":{"Service":"vpc-flow-logs.amazonaws.com"}}],"Version":"2012-10-17"},"tags":[{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc/FlowLog"}]}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.CfnRole","version":"2.186.0"}},"DefaultPolicy":{"id":"DefaultPolicy","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/DefaultPolicy","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/IAMRole/DefaultPolicy/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::IAM::Policy","aws:cdk:cloudformation:props":{"policyDocument":{"Statement":[{"Action":["logs:CreateLogStream","logs:DescribeLogStreams","logs:PutLogEvents"],"Effect":"Allow","Resource":{"Fn::GetAtt":["VpcFlowLogLogGroup7B5C56B9","Arn"]}},{"Action":"iam:PassRole","Effect":"Allow","Resource":{"Fn::GetAtt":["VpcFlowLogIAMRole6A475D41","Arn"]}}],"Version":"2012-10-17"},"policyName":"VpcFlowLogIAMRoleDefaultPolicy406FB995","roles":[{"Ref":"VpcFlowLogIAMRole6A475D41"}]}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.CfnPolicy","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.Policy","version":"2.186.0","metadata":["*",{"attachToRole":["*"]},{"attachToRole":["*"]},{"addStatements":[{}]},{"addStatements":[{}]}]}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_iam.Role","version":"2.186.0","metadata":[{"roleName":"*","assumedBy":{"principalAccount":"*","assumeRoleAction":"*"}},{"addToPrincipalPolicy":[{}]},{"attachInlinePolicy":["*"]},{"attachInlinePolicy":["*"]},{"addToPrincipalPolicy":[{}]}]}},"LogGroup":{"id":"LogGroup","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/LogGroup","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/LogGroup/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::Logs::LogGroup","aws:cdk:cloudformation:props":{"retentionInDays":731,"tags":[{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc/FlowLog"}]}},"constructInfo":{"fqn":"aws-cdk-lib.aws_logs.CfnLogGroup","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_logs.LogGroup","version":"2.186.0","metadata":["*"]}},"FlowLog":{"id":"FlowLog","path":"lamsec-deployFunctionWithVpc/Vpc/FlowLog/FlowLog","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::FlowLog","aws:cdk:cloudformation:props":{"deliverLogsPermissionArn":{"Fn::GetAtt":["VpcFlowLogIAMRole6A475D41","Arn"]},"logDestinationType":"cloud-watch-logs","logGroupName":{"Ref":"VpcFlowLogLogGroup7B5C56B9"},"resourceId":{"Ref":"Vpc8378EB38"},"resourceType":"VPC","tags":[{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc/FlowLog"}],"trafficType":"ALL"}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnFlowLog","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.FlowLog","version":"2.186.0","metadata":[{"resourceType":"*"}]}},"SECRETS_MANAGER":{"id":"SECRETS_MANAGER","path":"lamsec-deployFunctionWithVpc/Vpc/SECRETS_MANAGER","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/Vpc/SECRETS_MANAGER/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::VPCEndpoint","aws:cdk:cloudformation:props":{"tags":[{"key":"Name","value":"lamsec-deployFunctionWithVpc/Vpc"}],"privateDnsEnabled":true,"securityGroupIds":[{"Fn::GetAtt":["lamsecdeployFunctionWithVpcSECRETSMANAGERsecuritygroup98862008","GroupId"]}],"serviceName":{"Fn::Join":["",["com.amazonaws.",{"Ref":"AWS::Region"},".secretsmanager"]]},"subnetIds":[{"Ref":"VpcisolatedSubnet1SubnetE62B1B9B"},{"Ref":"VpcisolatedSubnet2Subnet39217055"}],"vpcEndpointType":"Interface","vpcId":{"Ref":"Vpc8378EB38"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnVPCEndpoint","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.InterfaceVpcEndpoint","version":"2.186.0","metadata":[{"vpc":"*","service":{"privateDnsDefault":true,"name":"*","port":"*"},"securityGroups":["*"]}]}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.Vpc","version":"2.186.0","metadata":[{"natGateways":"*","subnetConfiguration":[{"cidrMask":"*","name":"*","subnetType":"Isolated"}],"enableDnsHostnames":true,"enableDnsSupport":true}]}},"LatestNodeRuntimeMap":{"id":"LatestNodeRuntimeMap","path":"lamsec-deployFunctionWithVpc/LatestNodeRuntimeMap","constructInfo":{"fqn":"aws-cdk-lib.CfnMapping","version":"2.186.0"}},"Custom::VpcRestrictDefaultSGCustomResourceProvider":{"id":"Custom::VpcRestrictDefaultSGCustomResourceProvider","path":"lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider","children":{"Staging":{"id":"Staging","path":"lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider/Staging","constructInfo":{"fqn":"aws-cdk-lib.AssetStaging","version":"2.186.0"}},"Role":{"id":"Role","path":"lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider/Role","constructInfo":{"fqn":"aws-cdk-lib.CfnResource","version":"2.186.0"}},"Handler":{"id":"Handler","path":"lamsec-deployFunctionWithVpc/Custom::VpcRestrictDefaultSGCustomResourceProvider/Handler","constructInfo":{"fqn":"aws-cdk-lib.CfnResource","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.CustomResourceProviderBase","version":"2.186.0"}},"lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group":{"id":"lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group","path":"lamsec-deployFunctionWithVpc/lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group","children":{"Resource":{"id":"Resource","path":"lamsec-deployFunctionWithVpc/lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group/Resource","attributes":{"aws:cdk:cloudformation:type":"AWS::EC2::SecurityGroup","aws:cdk:cloudformation:props":{"groupDescription":"lamsec-deployFunctionWithVpc/lamsec-deployFunctionWithVpc-SECRETS_MANAGER-security-group","securityGroupEgress":[{"cidrIp":"0.0.0.0/0","description":"Allow all outbound traffic by default","ipProtocol":"-1"}],"securityGroupIngress":[{"cidrIp":{"Fn::GetAtt":["Vpc8378EB38","CidrBlock"]},"ipProtocol":"tcp","fromPort":443,"toPort":443,"description":{"Fn::Join":["",["from ",{"Fn::GetAtt":["Vpc8378EB38","CidrBlock"]},":443"]]}}],"vpcId":{"Ref":"Vpc8378EB38"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.CfnSecurityGroup","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.aws_ec2.SecurityGroup","version":"2.186.0","metadata":[{"vpc":"*","allowAllOutbound":true},{"addIngressRule":[{"canInlineRule":true,"connections":"*","uniqueId":"*"},{},"*","*"]},{"addIngressRule":[{"canInlineRule":true,"connections":"*","uniqueId":"*"},{},"*",false]}]}},"Integ":{"id":"Integ","path":"lamsec-deployFunctionWithVpc/Integ","children":{"DefaultTest":{"id":"DefaultTest","path":"lamsec-deployFunctionWithVpc/Integ/DefaultTest","children":{"Default":{"id":"Default","path":"lamsec-deployFunctionWithVpc/Integ/DefaultTest/Default","constructInfo":{"fqn":"constructs.Construct","version":"10.4.2"}},"DeployAssert":{"id":"DeployAssert","path":"lamsec-deployFunctionWithVpc/Integ/DefaultTest/DeployAssert","children":{"BootstrapVersion":{"id":"BootstrapVersion","path":"lamsec-deployFunctionWithVpc/Integ/DefaultTest/DeployAssert/BootstrapVersion","constructInfo":{"fqn":"aws-cdk-lib.CfnParameter","version":"2.186.0"}},"CheckBootstrapVersion":{"id":"CheckBootstrapVersion","path":"lamsec-deployFunctionWithVpc/Integ/DefaultTest/DeployAssert/CheckBootstrapVersion","constructInfo":{"fqn":"aws-cdk-lib.CfnRule","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.Stack","version":"2.186.0"}}},"constructInfo":{"fqn":"@aws-cdk/integ-tests-alpha.IntegTestCase","version":"2.186.0-alpha.0"}}},"constructInfo":{"fqn":"@aws-cdk/integ-tests-alpha.IntegTest","version":"2.186.0-alpha.0"}},"BootstrapVersion":{"id":"BootstrapVersion","path":"lamsec-deployFunctionWithVpc/BootstrapVersion","constructInfo":{"fqn":"aws-cdk-lib.CfnParameter","version":"2.186.0"}},"CheckBootstrapVersion":{"id":"CheckBootstrapVersion","path":"lamsec-deployFunctionWithVpc/CheckBootstrapVersion","constructInfo":{"fqn":"aws-cdk-lib.CfnRule","version":"2.186.0"}}},"constructInfo":{"fqn":"aws-cdk-lib.Stack","version":"2.186.0"}},"Tree":{"id":"Tree","path":"Tree","constructInfo":{"fqn":"constructs.Construct","version":"10.4.2"}}},"constructInfo":{"fqn":"aws-cdk-lib.App","version":"2.186.0"}}}